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AMENDMENT 

Please replace the paragraph starting at page 1, line 18 with the following: 



The subject matter of this application is related to the subject matter in a 
co-pending non-provisional application by the same inventor as the instant 
q\ application entitled, "Method and Apparatus for Facilitating Single Sign On 

through Redirection to a Login Server," having serial number 09/550,725, and 
filing date 17 April 2000 (Attorney Docket No. OR99- 17601). 



Please replace the paragraph starting at page 8, line 10 with the following: 



Client 101 includes browser 130. Browser 130 can include any type of 
^ web browser capable of viewing a web site, such as the INTERNET 

EXPLORER™ browser distributed by the Microsoft Corporation of Redmond, 
Washington. 



In the Claims: 



1 1 . (Unchanged) A metttod for facilitating access to a plurality of 

2 applications that require passwords, comprising: 

3 receiving a request for/a password from an application running on a 

4 remote computer system, the Request being received at a local computer system; 

5 authenticating the request as originating from a trusted source; 

6 using an identifier f6r the application to look up the password for the 

7 application in a password store containing a plurality of passwords associated with 

8 the plurality of applications; and 



2 



9 if the password 

1 0 function of the pass wore 



epdsts in the password store, sending the password or a 
to the application on the remote computer system. 



1 2. (Unchanged) The method of claim 1 , wherein the request for the 

2 password includes computer code that when run on the local computer system 

3 requests the password cjn behalf of the application on the remote computer system. 

1 3. (Unchanged)! The method of claim 2, wherein the computer code is in 

2 the form of a JAVA applet that runs on a JAVA virtual machine on the local 

3 computer system. 

1 4. (Unchanged) iThe method of claim 3, wherein sending the password or 

2 the function of the passwprd to the application to the remote computer system 

3 involves: 

4 communicating thfe password to the JAVA applet; and 

5 allowing the JAVA applet to forward the password to the application on 

6 the remote computer syste 



1 5. (Unchanged) Tjhe method of claim 3, wherein the JAVA applet is a 

2 signed JAVA applet, and wherein authenticating the request includes 

3 authenticating the JAVA applet's certificate chain. 



1 6. (Unchanged) The method of claim 1, wherein authenticating the 

2 request involves authenticating a creator of the request. 



1 7. (Unchanged) The method of claim 1, wherein authenticating the 

2 request involves authenticating the remote computer system that sent the request. 



1 8. (Unchanged) The methjbd of claim 1, further comprising, if the 

2 password store is being accessed for the first time, 

3 prompting a user for a single sign on password for the password store; and 

4 using the single sign on password to open the password store. 
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9. (Unchanged) The method of claim 8, wherein if a time out period for 



2 the password store expires, 



prompting the user again for the single sign on password for the password 



4 store; and 

5 using the single sign on password to open the password store. 

1 10. (Unchanged) The method of claim 1, wherein if the password store is 

2 being accessed for the first timfe, the method further comprises authenticating the 

3 user through an authentication [mechanism, wherein the authentication mechanism 

4 can include: 

5 a smart card; 

6 a biometric authentication mechanism; and 

7 a public key infrastructure. 



1 11. (Unchanged) The method of claim 1 , wherein if the password does 

2 not exist in the password storel the method further comprises: 

3 adding the password to the password store; and 

4 sending the password 1o the application on the remote computer system. 



1 12. (Unchanged) The 

2 to the password store further 



method of claim 1 1 , wherein adding the password 
comprises automatically generating the password. 
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1 13. (Unchanged) The methdU of claim 1 1 , wherein adding the password 

2 to the password store further comprises asking a user to provide the password. 

1 14. (Unchanged) The mtfthod of claim 1, further comprising decrypting 

2 data in the password store prior lo looking up the password in the password store. 

1 15. (Unchanged) Thef method of claim 1 5 wherein the password store is 

2 located on a second remote computer system. 

1 1 6. (Once Amendep) The method of claim 1 , wherein the password store 

2 is located on one of: / 

3 a local smart card/ 

4 a removable storage medium; and 

5 a memory button. 

1 17. (Unchanged) The method of claim 1, further comprising: 

2 receiving a request to change the password from the application on the 

3 remote computer system; 

4 automatically generating a replacement password; 

5 storing the replacement password in the password store; and 

6 forwarding the replacement password or the password function to the 

7 application on the remote computer system. 

1 18. (Unchanged) A computer-readable storage medium storing 

2 instructions that when executed by a computer cause the computer to perform a 

3 method for facilitating access to a plurality of applications that require passwords, 

4 the method comprising: 
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receiving a request for a password from an application running on a 
remote computer system, the request being received at a local computer system; 

authenticating the request as originating from a trusted source; 

using an identifier for the application to look up the password for the 
application in a password store jcontaining a plurality of passwords associated with 
the plurality of applications; ar 



if the password exists 
function of the password to the 



ifi the password store, sending the password or a 
application on the remote computer system. 



19. (Unchanged) The 
wherein the request for the 
local computer system request^ 
remote computer system 



computer-readable storage medium of claim 18, 
password includes computer code that when run on the 
the password on behalf of the application on the 



20. (Unchanged) The 
wherein the computer code is 
virtual machine on the local c 



computer-readable storage medium of claim 19, 
in the form of a JAVA applet that runs on a JAVA 
Dmputer system. 



21. (Unchanged) Thi computer-readable storage medium of claim 20, 
wherein sending the password or the function of the password to the application to 
the remote computer system : nvolves: 

communicating the password to the JAVA applet; and 
allowing the JAVA applet to forward the password to the application on 
the remote computer system 



22. (Unchanged) The 
wherein the JAVA applet is * 
request includes authenticatii 



computer-readable storage medium of claim 20, 
signed JAVA applet, and wherein authenticating the 
g the JAVA applet's certificate chain. 



1 23. (Unchanged) The computer-readable storage medium of claim 18, 

2 wherein authenticating the request involves authenticating a creator of the request. 



1 24. (Unchanged) The computer-readable storage medium of claim 18, 

2 wherein authenticating the request involves authenticating the remote computer 

3 system that sent the request. 
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25. (Unchanged) The cAmputer-readable storage medium of claim 1 8, 
wherein the method further comprises, if the password store is being accessed for 
the first time, 

prompting a user for a single sign on password for the password store; and 
using the single sign on password to open the password store. 



computer-readable storage medium of claim 25, 
the password store expires, the method further 



26. (Unchanged) The 
wherein if a time out period for 
comprises: 

prompting the user aga n for the single sign on password for the password 
store; and 

using the single sign on password to open the password store. 



27. (Unchanged) 
wherein if the password store 
further comprises authenticating 
wherein the authentication 

a smart card; 

a biometric authentication mechanism; and 
a public key infrastruc ture 



The! computer-readable storage medium of claim 18, 
is being accessed for the first time, the method 
the user through an authentication mechanism, 
mfcchanism can include: 



1 28. (Unchanged) Thjb computer-readable storage medium of claim 18 5 

2 wherein if the password doe£ not exist in the password store, the method further 

3 comprises: 

4 adding the passworfl to the password store; and 

5 sending the password to the application on the remote computer system. 

1 29. (Unchanged)/ The computer-readable storage medium of claim 28, 

2 wherein adding the password to the password store further comprises 

3 automatically generating the password. 

1 30. (Unchanged!) The computer-readable storage medium of claim 28, 

2 wherein adding the password to the password store further comprises asking a 

3 user to provide the password. 

1 31. (Unchanged) The computer-readable storage medium of claim 18, 

2 wherein the method farther comprises decrypting data in the password store prior 

3 to looking up the password in the password store. 

1 32. (Unchanged) The computer-readable storage medium of claim 18, 

2 wherein the password store is located on a second remote computer system. 
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33. (Once 



a local sua 



lended) The computer readable storage medium of claim 



18, wherein the password store is located on one of: 



card: 



a removable storage medium; and 
a memory button. 



8 




1 34. The computer-readaMe storage medium of claim 1 8, wherein the 

2 method further comprises: / 

3 receiving a request to change the password from the application on the 

4 remote computer system; / 

5 automatically generating a replacement password; 

6 storing the replacement password in the password store; and 

7 forwarding the replacement password or the password function to the 

8 application on the remote computer system. 

1 35. (Unchanged) An apparatus that facilitates accessing a plurality of 

2 applications that require passwords, comprising: 

3 a receiving mechanism that receives a request for a password from an 

4 application running on a remote computer system, the request being received at a 

5 local computer system; 

6 an authentication mechanism that authenticates the request as originating 

7 from a trusted source; 

8 a lookup mechanism that uses an identifier for the application to look up 

9 the password for the application in a password store containing a plurality of 

1 0 passwords associated with the plurality of applications; and 

1 1 a forwarding mechanism that sends the password to the application on the 

12 remote computer system if the password exists in the password store. 

1 36. (Unchanged) The apparatus of claim 35, wherein the request for the 

2 password includes computer iode that when run on the local computer system 

3 requests the password on behklf of the application on the remote computer system. 
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1 37. (Unchanged) The apparatus of claim 36, wherein the computer code 

2 is in the form of a JAVA applet that runs on a JAVA virtual machine on the local 

3 computer system. 
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38. (Unchanged) 
mechanism is configured to 
computer system by: 

communicating the 
allowing the JAVA 
the remote computer systerji 



apparatus of claim 37, wherein the forwarding 
lend the password to the application on the remote 

>assword to the JAVA applet; and 
applet to forward the password to the application on 



39. (Unchanged) 
a signed JAVA applet, and 
authenticate a certificate chain 



1 40. (Unchanged) 

2 mechanism is configured t 



41. (Unchanged) 
mechanism is configured tty 
request. 



he apparatus of claim 37, wherein the JAVA applet is 
wherein the authentication mechanism is configured to 



le apparatus of claim 35, wherein the authentication 
authenticate a creator of the request. 

he apparatus of claim 35, wherein the authentication 
authenticate the remote computer system that sent the 



42. (Unchanged) \ 'he apparatus of claim 35, wherein if the password 
store is being accessed for he first time, the lookup mechanism is configured to: 
prompt a user for a single sign on password for the password store; and to 
use the single sign c n password to open the password store. 
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43. (Unchanged) The ap saratus of claim 42 5 wherein if a time out period 



e lookup mechanism is configured to: 
the single sign on password for the password 



for the password store expires, tl 
prompt the user again fo^ 
store; and to 

use the single sign on pajssword to open the password store. 



f rst 



44. (Unchanged) The 
store is being accessed for the 
authenticate the user through ai 
authentication mechanism can i 

a smart card; 

a biometric authenticati 

a public key infrastructure 



pparatus of claim 35, wherein if the password 

time, the lookup mechanism is configured to 
authentication mechanism, wherein the 
nclude: 



45. (Unchanged) The 
insertion mechanism, wherein 



>n mechanism; and 



apparatus of claim 35, further comprising an 
f the password does not exist in the password store 



the insertion mechanism is cor figured to: 



add the password to the 



password store; and to 



send the password to the application on the remote computer system. 



1 46. (Unchanged) The 

2 mechanism is additionally coi l 



1 47. (Unchanged) The 

2 mechanism is additionally c 



1 48. (Unchanged) The 

2 decryption mechanism that is 



apparatus of claim 45, wherein the insertion 
figured to automatically generate the password. 



apparatus of claim 45, wherein the insertion 
ojifigured to ask a user to provide the password. 



apparatus of claim 35, further comprising a 
:onfigured to decrypt data in the password store. 
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1 49. (Unchanged) The apparatus of claim 35, wherein the password store 

2 is located on a second remote computer system. 

1 50. (Once Amended) TIhe apparatus of claim 35, wherein the password 

2 store is located on one of: / 

3 a local smart card; / 

4 a floppy disk; and 

5 a memory button. 

1 51 . (Unchanged) The apparatus of claim 35, further comprising a 

2 password changing mechanism that is configured to: 

3 receive a request to change the password from the application on the 

4 remote computer system; 

5 automatically genen te a replacement password; 

6 store the replacemei t password in the password store; and to 

7 forward the replacement password to the application on the remote 

8 computer system. 



1 52. (New) A method for facilitating access to a plurality of applications 

2 that require passwords, comprising: 

3 receiving a request to look up a password at a password server; 

4 wherein the request is received from a client and includes an identifier for 

5 an application requesting/ the password from the client; 

6 using the identifier for the application to look up the password for the 

7 application in a password store containing a plurality of passwords associated with 

8 the plurality of applications; and 
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9 if the password exists in the password store, sending the password or a 

10 function of the password to the dipt, so that the client can present the password 

1 1 to the application. / 

1 53. (New) The method tff claim 53, wherein the request is received from 

2 computer code running on the cwent that requests the password on behalf of the 

3 application. / 

1 54. (New) The method! of claim 54, wherein the computer code is in the 
{ yS 2 form of a JAVA applet that runs on a JAVA virtual machine on the client. 

* 1 55. (New) A server that distributes code for facilitating access to a 

2 plurality of applications that require passwords, wherein the code operates by: 

3 receiving a request for a password from an application running on a 

4 remote computer system, the request being received at a local computer system; 

5 authenticating the reqilest as originating from a trusted source; 

6 using an identifier forfthe application to look up the password for the 

7 application in a password store containing a plurality of passwords associated with 

8 the plurality of applications; and 

9 if the password exists in the password store, sending the password or a 
10 function of the password to flhe application on the remote computer system. 
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COMMENTS 

Applicant has amended claims 16, 33 and 50, and as added new claims 53- 
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